Related Documentation
Introduction
bubblewrap is an unprivileged application sandboxing tool. It uses linux namespaces, in particular Mount namespaces seccomp and no_new_privs to achieve and application sandbox.
AppArmor integration
Bubble wrap does not have any apparmor integration.
Affects on AppArmor mediation and policy
Mount namespace and pivot root.
no_new_privs